[3524] in Kerberos
Re: Encrypt/Decrypt large files
daemon@ATHENA.MIT.EDU (Derek Atkins)
Fri Jul 8 02:42:40 1994
To: Porlin Kang <pk2k+@andrew.cmu.edu>
Cc: kerberos@MIT.EDU
In-Reply-To: [3517] in Kerberos
Date: Fri, 08 Jul 94 02:24:50 EDT
From: Derek Atkins <warlord@MIT.EDU>
> Could anyone please let me know if I could encrypt
> and decrypt arbitrary size of data in kerberos.
> Is krb_mk_priv most efficient way ?
There are a few things you can do. You could use the
krb_mk_priv()/krb_rd_priv() pair to seal and unseal data. This also
checks timestamps and other niceties as well. If you just want to
encrypt, you can always just call pcbc_encrypt() directly.
But to answer your question, yes, you can use krb_mk_priv() to seal
arbitrarily-long data, and since krb_rd_priv() decrypts in place you
just have to know in your receiving routine how much data you are
about to receive.
I hope this helps
-derek
Derek Atkins, SB '93 MIT EE, G MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
Home page: http://www.mit.edu:8001/people/warlord/home_page.html
warlord@MIT.EDU PP-ASEL N1NWH PGP key available
